Microsoft Office Privilege Elevation Vulnerability

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Microsoft Office Privilege Elevation Vulnerability

CVE-2026-26134

Summary

An attacker with authorized access to a system with Microsoft Office installed can potentially gain elevated privileges, allowing them to access sensitive files or settings. This could lead to unauthorized changes or data theft. Update Microsoft Office to the latest version to prevent exploitation.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
microsoft	office	<= 16.0.19822.20000	–

Original title

Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally.

Original description

Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-190 Integer Overflow

CWE-416 Use After Free

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26134

Published: 10 Mar 2026 · Updated: 14 Mar 2026 · First seen: 11 Mar 2026